Overview

overview

6

Static

static

9e5e840b0a...ef.exe

windows7-x64

5

9e5e840b0a...ef.exe

windows10-2004-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9e5e840b0a0170c66fd78008123371612483456c7b6546cc3cea43adf637b6ef

  • Size

    203KB

  • Sample

    221126-2zttrsbf59

  • MD5

    ba2f50dd11466f0955eb3c2bac44dda9

  • SHA1

    3749c4e3450a8d7412d8c95d85f5f9bb689b06c1

  • SHA256

    9e5e840b0a0170c66fd78008123371612483456c7b6546cc3cea43adf637b6ef

  • SHA512

    62d08183cffbd186c72ee5bd4fa9c79cce470c6602405b348b0a643ff1a64a5e2445ccf0e63a23fd3d485cf8b78505d2c26a91dadfcc89cd340f6e44dffd9cc4

  • SSDEEP

    1536:uCbDzBeTNuPLE0L4dBMfE6eBEnrgQ6b0Y+3nvJyk4KNIIJ0CoRy0lzAuZLnXCOjq:RIZD3CjHY+3nRyk4KNIIVwZLn57A

Score
6/10
persistence

Malware Config

Targets

    • Target

      9e5e840b0a0170c66fd78008123371612483456c7b6546cc3cea43adf637b6ef

    • Size

      203KB

    • MD5

      ba2f50dd11466f0955eb3c2bac44dda9

    • SHA1

      3749c4e3450a8d7412d8c95d85f5f9bb689b06c1

    • SHA256

      9e5e840b0a0170c66fd78008123371612483456c7b6546cc3cea43adf637b6ef

    • SHA512

      62d08183cffbd186c72ee5bd4fa9c79cce470c6602405b348b0a643ff1a64a5e2445ccf0e63a23fd3d485cf8b78505d2c26a91dadfcc89cd340f6e44dffd9cc4

    • SSDEEP

      1536:uCbDzBeTNuPLE0L4dBMfE6eBEnrgQ6b0Y+3nvJyk4KNIIJ0CoRy0lzAuZLnXCOjq:RIZD3CjHY+3nRyk4KNIIVwZLn57A

    Score
    6/10
    persistence

    • Adds Run key to start application

      persistence

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

1
T1060

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks